bolivian-peru/natural-language-config
skills/natural-language-config/SKILL.md
Translate natural language requests into NixOS configuration changes. Show diffs before applying. Use nixos-rebuild for atomic deploys. Every change is rollbackable and logged.
$ install --global
skillsauthnpx skillsauth add bolivian-peru/os-moda natural-language-configInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 20, 2026, 3:00 AM6.6s1 file scanned
SKILL.md
- name:
- natural-language-config
- description:
- >
- activation:
- auto
Natural Language NixOS Config Skill
Users describe what they want in plain English. You write the NixOS config.
Workflow
-
Understand the request "Set up PostgreSQL with nightly backups" "Install and configure Caddy as a reverse proxy for port 3000" "Enable fail2ban to block brute force SSH"
-
Read current config
file_read({ path: "/etc/nixos/configuration.nix" }) -
Generate the NixOS module Write idiomatic NixOS configuration. Use
services.*,networking.*,security.*etc. Prefer declarative NixOS options over imperative scripts. -
Show the diff to the user Present EXACTLY what will change. Use a code block with +/- diff markers. Explain each change in plain English.
-
Wait for approval NEVER apply changes without user confirmation. "Here's what I'll add to your NixOS config. Apply it? [Y/n]"
-
Apply atomically
shell_exec({ command: "nixos-rebuild switch" }) -
Verify Check the service started correctly.
service_status({ service: "postgresql" }) -
Log everything
memory_store({ summary: "Installed PostgreSQL with nightly pg_dump backups", detail: "Added services.postgresql, services.postgresqlBackup to configuration.nix. Generation 49.", category: "system.config", tags: "nixos,postgresql,config-change" })
NixOS Config Conventions
- Configuration goes in
/etc/nixos/configuration.nixor imported modules - Use
mkIf,mkOption,mkDefaultwhen extending existing config - Prefer
services.X.enable = true;patterns - For packages: add to
environment.systemPackages - For firewall:
networking.firewall.allowedTCPPorts - For users:
users.users.X
Example Interaction
User: "Set up nginx to serve a static site from /var/www"
Response:
I'll add nginx to your NixOS config. Here's the change:
services.nginx = {
enable = true;
virtualHosts."default" = {
root = "/var/www";
locations."/" = {
index = "index.html";
};
};
};
networking.firewall.allowedTCPPorts = [ 80 443 ];
This will:
- Install and start nginx
- Serve /var/www on port 80
- Open ports 80 and 443 in the firewall
Apply this? The change is atomic and rollbackable.
Rollback
If a rebuild breaks something:
shell_exec({ command: "nixos-rebuild switch --rollback" })
Then investigate what went wrong.
Critical rules
- ALWAYS show the diff before applying
- ALWAYS wait for user approval
- ALWAYS verify after rebuild
- NEVER edit /etc/nixos files without reading them first
- Store every config change in memory for time-travel debugging
Related Skills
bolivian-peru/swarm-predict
devops
VerifiedTrustedCommunity
Multi-perspective risk analysis using structured persona debate before deploying changes
96SKILL.mdUpdated Apr 20, 2026
bolivian-peru/spec-driven-development
development
VerifiedTrustedCommunity
Build software via spec-driven development (github/spec-kit). Whenever the user asks for a feature larger than a one-line tweak, scaffold a spec-kit project, capture WHAT + WHY, declare tech stack, break into tasks, then iterate the implementation until tests pass.
88SKILL.mdUpdated May 4, 2026
bolivian-peru/system-packages
development
VerifiedTrustedCommunity
Manage NixOS packages declaratively. Search, install (via configuration.nix rebuild), remove, rollback, and list generations. Understands the NixOS declarative model.
80SKILL.mdUpdated Apr 20, 2026
bolivian-peru/system-monitor
data-ai
VerifiedTrustedCommunity
Monitor system health: CPU, memory, disk, network, processes, services, and logs. Present data naturally. Correlate issues across subsystems. Alert on thresholds. Diagnose root causes.
80SKILL.mdUpdated Apr 20, 2026